[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Bug#542472: ITP: sslsniff -- SSL/TLS man-in-the-middle attack tool

Package: wnpp
Severity: wishlist
Owner: Pierre Chifflier <pollux@debian.org>

* Package name    : sslsniff
  Version         : 0.6
  Upstream Author : Moxie Marlinspike <moxie@thoughtcrime.org>
* URL             : http://www.thoughtcrime.org/software/sslsniff/
* License         : GPLv3
  Programming Lang: C++
  Description     : SSL/TLS man-in-the-middle attack tool

sslsniff is designed to create man-in-the-middle (MITM) attacks for
SSL/TLS connections, and dynamically generates certs for the domains
that are being accessed on the fly. The new certificates are constructed
in a certificate chain that is signed by any certificate that is
sslsniff also supports other attacks like null-prefix or OCSP attacks to
achieve silent interceptions of connections when possible.

sidenote: while the project has a COPYING file containing the GPLv3
text, almost all source files have a BSD-license header, and none of
them have the GPL header ?!

Reply to: